The disclosure provides an approach for certificate management for cryptographic agility. Embodiments include receiving, by a cryptographic agility system, a cryptographic request related to an application. Embodiments include selecting, by the cryptographic agility system, a cryptographic technique based on contextual information associated with the cryptographic request. Embodiments include determining, by the cryptographic agility system, based on the cryptographic request, a certificate for authenticating a key related to the cryptographic technique. Embodiments include providing, by the cryptographic agility system, the certificate to an endpoint related to the cryptographic request for use in authenticating the key.

A method and apparatus for sign-bill return based on a blockchain, a device and a readable storage medium, through acquiring (S101) a sign-bill return request sent by a shipment terminal; acquiring (S102) pre-stored target sign-bill information according to the sign-bill return request; acquiring (S103) a target hash value corresponding to the target sign-bill information from the blockchain; and sending (S104) the target sign-bill information to the shipment terminal, when verifying that the target sign-bill information is correct by the target hash value, the tamper-proof blockchain storage of the target sign-bill information is achieved, which not only improves efficiency of the sign-bill return, but also improves reliability of the sign-bill return.

Systems, computer program products, and methods are described herein for automatic provisioning of limited-transferability electronic certificates associated with events. The present invention may be configured to receive event data including event information associated with an event, receive user data including user information associated with a user, where the user is associated with the event, and generate, based on the event data and the user data, an electronic digital certificate. The present invention may be configured to store the electronic digital certificate on a distributed ledger and generate, on the distributed ledger, a smart contract associated with the electronic digital certificate that prevents transfer of the electronic digital certificate. The present invention may be configured to record, on the distributed ledger, that the user owns the electronic digital certificate and provide, to a user device associated with the user, a notification that the user owns the electronic digital certificate.

An image sensor 30 includes an image information processing unit 4 that forms integrated information in which image sensor identification information capable of identifying the image sensor 30 and image information obtained by an analog/digital conversion unit 25 are associated with each other, and an image information output unit 24 that outputs the integrated information to an external unit.

A system and method generate private keys for devices participating in a self-certified identity based encryption scheme. A private key is used by the devices to establish a common session key for encoding digital communications between devices.

An integrated circuit includes: one or more protected circuits; a license control circuit configured to request, from a license issuer, a license for activating the one or more protected circuits, the license request having a seed value; and a cryptographic circuit configured to verify the authenticity of a license received from the license issuer based on the seed value, wherein the license control circuit is configured to impose a validity limit on the received license, and to request a new license from the license issuer before the validity limit of the received license.

Systems and methods for secure peer-to-peer communications are described. Devices registered into trusted network may be capable of establishing a shared data encryption key (DEK). In embodiments, each device may be configured to obtain a share of a data encryption key (DEKi) that can be stored locally. The shares may be shares in an M of N Secret Sharing Scheme. This may involve a network that includes an integer, N, devices, and in which M devices may share a secret (i.e. the DEK) during communications, M being an integer less than or equal to N. To obtain the entire DEK during encryption/decryption, a requesting device may send requests to M of N devices for their shares of the DEK. Once M shares are obtained, they may be used generate the DEK for encrypting/decrypting data between the devices.

The disclosure relates to improvements in secure channel establishment. In some aspects, the techniques described herein relate to a method including: issuing, by a client device to a server, a request to establish a secure connection; receiving, by the client device, a response to the request to establish a secure connection from the server, the response including a digital certificate associated with a public key stored by the server, the public key used to establish a symmetric key; validating, by the client device, the digital certificate; and computing, by the client device, a shared secret using the public key stored by the server and a private key generated by the client device.

Apparatus, methods, and computer program products for managing power sharing in electronic devices are disclosed. One apparatus includes a processor and a memory that stores code executable by the processor to determine, in real-time, whether one or more first electronic devices that are compatible with a second electronic device that is low on power are within a predetermined geographic distance of the second electronic device and, in response to determining that one or more first electronic devices that are compatible with the second electronic device are within the predetermined geographic distance of the second electronic device, transmit a request to the one or more first electronic devices inquiring whether any of the one or more first electronic devices are willing to share power with the second electronic device. Methods and computer program products that include and/or perform the operations of the apparatus are also disclosed.

Disclosed are various embodiments for replacing hard-coded certificate pinning with blockchain based certificate pinning. A signing device can obtain a public key from an endpoint device, produce a signature for the public key, and store the public key on a distributed data store, such as a blockchain. A client device can obtain and validate the public keys from the distributed data store and use the public keys to establish a secure connection between the client device and the endpoint device.